(i9) B^H^it (jp) 02) & §fl i|# wf & $S (a) (nmmmmmm 

#^2003 -36425 
(P2003 - 36425A) 
(43)&HB ¥$15*p 2 3 7 B (2003. 2. 7) 



(51) IntCl.' 

G 0 6 K 19/07 

B4 2D 15/10 

G 0 6 F 9/44 

G 0 6 K 17/00 



5 2 1 



FI 

B4 2D 15/10 
G0 6K 17/00 
19/00 

G 0 6 F 9/06 



f-TO-n**) 
52 1 2C005 
D 5B0 3 5 
N 5B0 5 8 
62 OK 5B076 



£M$ »*«©£C7 OL (£15 JO 



(21)fflM#ff 


#H2001 -223775( P2001 -223775) 


mmmx 


000005108 










(22)ffiMB 


¥i&134p 7 E 25 B (2001 . 7. 25) 












MP 








#^JIimill*5rij^KdE##1099SSfi $ 
























tt^jll!i;il^rfi#^E3E##1099|IM w 
















100075096 



















(54) WaiJf-f*-H 



(57) [g^] 

ffiV&ffl *Xh^y^7x-7.210t, 
*£MS8B220fc, R0M240t, RAM250 1 , EEPR0M260 

ts Hrf^37°a-b7-9-270t^fix., cf^MSHZzo 
V FJ^-^CO+K X£gft U EEPR0M260{CfE1t£ 
- FBttftlnvy Kffl7-^xy 7£EEPR0M260(c7 

-$0 , fttavyHJSiya^i (3-K, 7- 



240 < 



250- 



150 



CPU 



ROM 



RAM 



i/f 



210 



~-220 
2^0 



•-200 



EEPROM 



270 



230 



(2) 

1 

mmmmmm 

T, 

V> F*fS*.fcf&3RE 1 tia«o-fe+a U tV *- Fc 10 
[11*53] tuIB7^U^-^3^ffl3vyFMay 
D ^7 A ©SiliJ 1 3 v > F tfgg LfcT'fV'r—i/a 

7*7A©igf$iJltriv> Ht?SSLfettlnvy KOn 
7>F^5^ fc LT^fflT^^ff*52 tlBtO-b 

mm 4 ] tta^ + tmr 7v 3 
FMayp^^Attufeft^nvy F®a 

2tfB«©^^aUr^*-F 0 20 

fc«fctf^3V>Fffl7-*xy70^X*»tHlJE 
ftSUfclEttS-e, tm77Vr-i/3ymm^*y F 
fflg^u^A^n-rVy^-r^tl^t^fflnvyF 
ffl7-^xU7^77"U^—>3 yJgffiT HuiEEttffli 

*-K. 

HisRis 6 ] mm* *;i/**-7>-r sicm^ 

«7^;^-f a y|ffl3V>Kffl^t5y^f-* 30 
Rtf#t3v:/Fffl7-*T-**$M:t3¥8£« 
* /cff 2 fcfBISO -fe * a U r w * - Fo 
[11*17] |^af-+^;Hf^T«iinv>'Fffl7-^ 
x'J Tfclft U3J»*5m ^a^^^;US^T77" 
U -: ■/ 3 > H X 2 r -c -y * r - £ b $ $ A § ^ 
mmtMm KIBKO-b+a U tV *- F„ 

M©l»§ffi] 

[0 0 0 1] 

fcfBH«*&££«U *XF«fgfr?>©3v:/F£JSb 40 
[0 0 0 2] 

[«©Sffi] IC*-Ftt, 7°7X^-y^*-FSS 
?ft2tffcS. I gSSiWK^A^ 50 



^2003-36425 
2 

MWBtt * p y * ^Bg#t^f § n fc fc J: o Tttff t 
%o I C *- Ftt Wf?i LTS*«4 HOggS 

■ OH-? s c fc t <t o , mmm 

-y FStffrS^y*:/?* fc «l fgo-b+a U r-r tf& 
Sfc^tlSi/XrAtfeV^T, MAmm(Drclb<D=L-if 

[0 0 0 3] 

[%W^(Sftb<t5fct5i»S] I Cfc-FlirtSBEffl 

jtj-FrtaPTHfr-rSo ^^tacfctctoT, nasr 

-*fcKfc5ffigttnvvFffig7n?7AfcLT«J£ 

sftrvso i c^-f©^ i 

C*- Ft nvy F^fltS fc^ *©3vyFfcJtB 
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37yF#^3 0 2f->Xfi377F\ ftl377 
F, a— ^fVr-i/a >|ffl377F©^f ftt*& 
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^*3v>Fr-*3 0 0fe:8S&tr Uf-^i 0 0 
2) o ?LT3VyFglJHl 1 OO^KtS (X 
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JfKftlSLfc C H C B xy F U Vy F C H C 

B (3 2 0) NRS-TS Ufy^l 10 2). Wft* 
UyFCHCBtMbTfflStSo ft, 
^-^UT^Sa^Sfrf-iy^t* (Xf7^1 1 

0 3) „ f-^^;l/A^-7>$nTl^ti^CHCB(l,0) 

t f- + * * o 7 >j ^ - s/ a >s^|g£ s nr 

2 0 Octets (Xr-y7l 120). *-7>-2tl 20 
TV5i&&, 3vyF#§3 0 2^l37>Ff*5 
**5fr*f-xy^-ra Uf771 1 0 4) c fc4V»tt 
7 7U fr- f 3 3 vy KT?36« trfSfrZ* x 7 7 
t§ Ut 7 7 s 1 1 0 6) „ ^laYVFOl^ CC 
CB (3 4 0) ^fi7W„ CCCB(0)*MK8Wt)O 
tt«*6fcrcCCB(l)fr6«a3v> Fa- F©ft^7 F 
U**B*#fS„ ^LTW#L/c7FbX^bW5 

(Xt7 7i 105, 1109, 1 1 3 0) o 
It, H2 2©#il3v;/F3-FCD$fcflS3 0 0 
•f^c 30 

[0 0 3 1] 77U^r— 7 3 >#ffln-7>F(Dil 
CHCB(l,l)£^x7*t3„ CHCB(l,l)tC^g^tlT 
V^77U^->'3y^3-F(D5 1 cgi7Fb7^# 
U 8H#Lfc7Kl/X'\ftttf5 (Xf 771 10 7, 
1110, 1 1 3 0) „ C(D@m±, 5<D77Vr 
—>3yn-F©7tIl4 0 0 OVMt§ 0 CHCB(l.l) 
f£7 FbX^S^ftT^&i/^f-g-, laavyFjQI 

1 2 0 O'xMtS (Xt77°1 1 2 0) c 

[0 0 3 2] 4*arivyFffiSl 2 0 0TH±, U 7-y 
3-F3 1 ltX7-3-F^l£L Uf7yi 2 0 40 
1) , nv>FII7ffliIl 3 0 0«5 (Xr7 7 
1 2 0 2) o 

[0 0 3 3] £ffi3VVKfflg3 0 0 0fcSW477U 
$-—>3 ySl3vyKjBl4 0 0 OffttTtSfc, ^ 
vyF&Ti 3 00fc#ttLT<*„ CCTtt, Wl 
yXf-^3 1 0{C^?tlTV^U^->-3-F3 1 
l^v>F'J^-yf-^3 1 2£*XF«§5l 0 0 
fcJMfg-fS Ur 7 7*1 3 0 l) o c dTStfavy F 
Sf 2 4 l'NMSo 

[0 0 3 4] HI 7tC, yXfi37>Ff'X^7fffi 50 
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S2 0 0 0£^r o $f37yFf-?3 0 0W?>3 
^F#^3 0 2*flBity Wf772 0 0 1)o SC 
CB (3 6 0) ?U nv>FS€3 0 2tJtJS 

ti.v'XrAnvy FMS^-^y©^^ FbX£© 
f#U 5tf#L/c7FUX'vfrftT3 (Xr772 0 0 

2) o tOfHtli, Open_Channel, Close_Channel&£ 

FH7 1 3 0 O^RfS (Xr77°2 0 0 9) o 
[0 0 3 5] HI 8ttLoad_CC0Mnvy FMS2 3 0 0 
T-feSo LoadJCOMnvy Fliftlnvy F©a- Fa 
-7 F 7 0 0£n~ T^yft §o ftl^^yFon- 
Fn-y F 7 0 Olinvy Fr-£ 3 OOflOnvyF 

[0 0 3 6] 3 4 0©CCCBfcftVT, CCCB(0)£§ 
Stt»cTS (XT772 3 0 1) „ ^LT, 4±lnv 
>F^3-F7 0 2^In?yFlftIS2 6 3^ 
tetttS,, (Xx7 72 3 0 2) „ atftSnvy Fffl 
7-^7 0 3©-9--rX^fr§ (XT772 3 0 

3) „ ^LT, 3 4O0CCCBr-*£iS£*3o t 
£fe^ CCCB(l)Kftii3V> F3-K'\©:JW*, C 
CCB(2)t«l3?y F#^3- F 7 0 2 ©th-fX, CCCB 
(3)fcitiinvy Fffl7-y 7 0 CCCB(4)K 
ftlnvy FOStt1fffl7 0 1 fcffifflt* (Xr-y72 

3 0 4) „ «fitU^-yn-F3 1 1 KE#U*-V 
3-F*R£U ffiSfcHTtS (Xr77°2 3 0 5, 
2 3 6 0) „ RlnvyFfflcy-^W^ £t"?77° 
y^-v-3 y^p— rV>^$n/cBft|ijD®§o 

[0 0 3 7] Hi 9 t±Load_AP3 FfflS 2 4 0 0 T* 
fe§ 0 Load_APnv> Ftt77U fr-f a y©n- Fa 
-•y F 7 l o*n— fV>^Y§o 7-?Vr~i/3y<D 
n- Fa- 7 F 7 1 OtinvyFf-^ 3 0 0|*I©3V 
y 3 0 3 fcteSteftTl^So 

[0 0 3 8] 3 3 0©APCBfcfcV>T, 3E#x>MJ£$ 
fo S^APCBxy F U fcMottfc&Slf S&xy F U © 
APCB(1 ,0)^)1 (XT7 72 4 0 1,2 

4 0 2) „ 77U^-^3>^3-F7 1 2 t77'J 
^-ygyf-^S (7 13) 77'J7--^3>ll 

m®5 i ottttt-rs. 77o^-y a ylffl«5 

1 otsiJ©77U ^—>3 y^rocfelfi^tiTo^tl^ 

(±, J E-nt^^cSl^ia5 2 0fCft«lt5 (Xr7 7 

2 4 0 3) o ^ic77'J7"-v'3>T-^D (7 14) 
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CLAIMS 

[Claim(s)] 

[Claim 1]A security card provided with a registration deletion command of a common command 
processing program which can be used in common among two or more applications in a 
security card in which processing and memory of data are possible according to a command 
from host equipment. 

[Claim 2]The security card according to claim 1 provided with a registration deletion command 
of an application device-dependent-command processing program which can be used with one 
application. 

[Claim 3]A data division of an application program registered with a registration deletion 
command of said application device-dependent-command processing program, The security 
card according to claim 2 which can be used as a command parameter of a common 
command registered with a registration deletion command of said common command 
processing program. 

[Claim 4]The security card according to claim 2 provided with a means to match and manage 
said application device-dependent-command processing program and said share command 
processing program, per logical channel. 

[Claim 5]When carrying out loading of said common command processing program, compute a 
pointer to a common command instruction code, and size of a work area for common 
commands, and memory storage is made to memorize, The security card according to claim 2 
provided with a means to assign a work area for common commands to said memory storage 
by application units when carrying out loading of said application device-dependent-command 
processing program. 

[Claim 6]The security card according to claim 2 provided with a means to initialize dynamic 
data for application device dependent commands and work data for share commands 
corresponding to a case where a logical channel is opened. 

[Claim 7]The security card according to claim 2 provided with a means which chooses and 
switches a work area for common commands by a logical channel number, and a means which 
chooses and switches static data for applications by a logical channel number. 
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[Detailed Description of the Invention] 
[0001] 

[Field of the lnvention]This invention carries a security function and a memory storage function, 
and relates to the host equipment which can insert processing / [ in which processing and 
memory are possible ] storage (for example, security card), and its processing/storage (for 
example, security card) of data according to the command from host equipment. 
[0002] 

[Description of the Prior Art]An IC card embeds IC (integrated circuit) chip into a plastic card 
board, and has an external terminal of an IC chip in the surface. There are a power supply 
terminal, a clock terminal, a data input/output terminal, etc. in the external terminal of an IC 
chip. The IC chip operates, when a contact carries out direct supply of a power supply or the 
driving clock from an external terminal. By transmitting and receiving an electrical signal 
among contacts, such as a terminal, through an external terminal, an IC card exchanges 
information with a contact. As a result of information exchange, an IC card performs sending 
out of a calculation result or memory information, and change of memory information. The IC 
card can have the function to perform security processings, such as security data protection 
and personal authentication, based on such operation specifications. In the system for which 
the security of extra sensitive information, such as credit settlement and banking, is needed, 
the IC card is used as a user device for identification. 
[0003] 

[Problem to be solved by the inventionJAn IC card stores security data in an inside, and all 
processings in connection with security data are performed inside an IC card. By doing so, it 
has prevented security data coming out of an IC card. The processing in connection with 
security data is constituted as a command processing program. From the exterior (host 
equipment) of an IC card, if a command is transmitted to an IC card, the command processing 
program corresponding to the command will be executed. And an executed result is replied to 
host equipment. The command (or command processing program) which does not restrict a 
command in one but is equipped two or more pieces in many cases has a close relation to 
mutual, the executed result of the front command is saved inside, and processing of a next 
command is performed using the data in many cases. According to the scenario of the 
command issue for which it opts beforehand, a command is published by the IC card from host 
equipment. Security system processing is carried out by repeating a series of command 
transmission / response reception. 

[0004JMULTOS etc. are known as an OS for IC cards corresponding to multi-application 
(operating system). The command processing program for applications and security data are 
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managed as one, and can be registered and deleted at an IC card at application units.And the 
firewall is set up between applications and mutual interference is prevented. 
[0005] In the above-mentioned conventional technology, since the firewall was set up between 
applications, the common command used in common between applications was not able to be 
registered. Using the data in application as a command parameter to a common command etc. 
was not completed. There was a problem that it was difficult only for one to be able to carry out 
open [ of the active application ], but to perform two or more applications simultaneously. 
[0006]The purpose of this invention is to provide the security card which improved the user's 
convenience by performing two or more applications in parallel. 
[0007] 

[Means for solving problem]This invention is provided with an open channel-command and 
closing channel command, the loading command of a common command processing program, 
and the loading command of an application device-dependent-command processing program. 
[0008]A means to execute a system command, a common command, and an application 
device dependent command, the table and logical channel unit which manage many logical 
channels - an application device-dependent-command processing program (an instruction 
code.) a static data, dynamic data, and share command processing program (an instruction 
code.) A means to compute and memorize the pointer to a common command instruction 
code, and the size of the work area for common commands when carrying out loading of the 
means and common command processing program which match and manage work data, A 
means to assign the work area for common commands to application units when carrying out 
loading of the application device-dependent-command processing program, A means to 
initialize the dynamic data for application device dependent commands and the work data for 
share commands corresponding to the case where a logical channel is opened, It has a means 
which makes command processing program selection and is performed with a logical channel 
number and a command number, a means which chooses and switches the work area for 
common commands by a logical channel number, and a means which chooses and switches 
the static data for applications by a logical channel number. 
[0009] 

[Mode for carrying out the inventionJThe working example of this invention is described using 
Drawings. 

[0010]The entire configuration figure of one working example of this invention is shown in 
drawing 1 . The integrated security card 200 in connection with this invention is connected to 
the adapter 130 of host equipment via the host interface 210. The host equipment 100 
comprises the central processing unit (following CPU) 110, the memory apparatus 120, and 
the adapter 130 which perform control by the whole computer, and they are connected by the 
system bath 140. The application programs 121 and 122 and the command registration tool 
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123 are stored in the memory apparatus 120. These programs access the integrated security 
card 200. The command published from the programs 121, 122, and 123 is transmitted to the 
integrated security card 200 via the adapter 130 and the interface bus 150. From the 
integrated security card 200, a response is replied to the host equipment 100 corresponding to 
a command. 

[001 1] Drawing 2 is a system block figure of the integrated security card 200 in connection with 
this invention. 

[0012]CPU220 for the integrated security card 200 to perform data processing, Data (a 
program.) containing - with ROM(Read Only Memory) 240 for memorizing, and RAM (Random 
Access Memory)250 and EEPROM (Electrically Erasable Programmable ROM)260. It has the 
host interface 210 for transmitting and receiving the code co-processor 270, and the exterior 
and data for performing processing carried out to a code/decoding in between, and they are 
connected by bus 230. It is possible to perform cipher processing with the code co-processor 
270 according to the command from the host equipment 100. According to a program 
(software), CPU220 may perform cipher processing instead of the code co-processor 270 
(hardware). The integrated security card 200 communicates with the host equipment 100, and 
performs security processing and memory processing according to the command from the host 
equipment 100. The communication between the integrated security card 200 and the host 
equipment 100 may be a cable like the interface bus 150, and may be infrared rays and radio 
like an electric wave. The form of the integrated security card 200 is not limited in the shape of 
a card type. The integrated security card 200 is an IC card, for example. 
[0013]The type of a command published by the integrated security card 200 from the host 
equipment 100 is shown in drawing 3 . There are three types of commands, a system 
command, the common command which can be used in common between applications, and 
an application device dependent command. A common command and an application device- 
dependent-command processing program can be registered from the host equipment 100. 
[Q014] Drawing 4 is a memory map of ROM240 in the integrated security card 200, and 
EEPROM260 and RAM250. The command reception program 241, the command epilogue 
program 242, system control, and the system command field 243 are assigned to ROM240. 
The system management data area 261, the application operation field 262, and the common 
command active region 263 are assigned to EEPROM260. The work region 251 for system 
commands and the work region 252 for applications are assigned to RAM250. The system 
management data area 261 and the work region 251 for system commands are used for the 
command reception program 241, the command epilogue program 242, and the system 
command processing program in the system command field 243. 
[00151 Drawing 5 is details of the work region 251 for system commands, and the system 
management data area 261 . The command-data field which stores the command information 
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which received 300 from the host equipment 100, and 310 are response data areas which 
store the response information conversely returned to host equipment. 320 is current CHCB 
which memorizes the logical channel number chosen now. 

[0016]Various system management tables are stored in the system management data area 
261. The table APCB where 330 manages the application device-dependent-command 
processing program registered (Application Control Block). The table CCCB where 340 
manages the common command processing program registered (Commoncommand control 
block). The table CHCB (Channel control block) where 350 manages a logical channel, and 
360 are the tables SCCB (System command control block) which manage a system command. 

[00171 Drawing 6 is details of the application operation field 262 and the work region 252 for 
applications. The application operation field 262 in EEPROM260 is divided into application 
units (510, 520), and the code (511, 521) and the data S (512, 522) of each application device- 
dependent-command processing program are stored in each field. The data S (512, 522) is 
static data of a constant etc. The work region 252 for applications in RAM250 is also divided 
into application units (610, 620), The data D (611, 621) and the work for common commands 
(612, 622) of each application device-dependent-command processing program are stored in 
each field. The data D (61 1 , 621) is dynamic data used while application is active. The work for 
common commands (612, 622) is assigned for every application. 
[0018] Drawing 7 is details of the table APCB (330) which manages the application device- 
dependent-command processing program ******(ed). APCB (330) has an entry (331, 332, ..) 
corresponding to application. Each entry 331 stores the information about corresponding 
application. These information is created when application is registered. 
[0019]APCB (1, 0) is a switch showing whether application is registered or not. There are a 
pointer to the work for common commands assigned by the place (pointer to a code, the data 
S, and the data D) where corresponding application is stored, an application name, and its 
application, etc. APCB (330) is created by the loading command (Load_AP) of the application 
unit shown in drawing 10 . 

[00201 Drawing 8 is details of the table CHCB (350) which manages a logical channel. 
[0021]The program (121, 122, 123) in the host equipment 100 can access an application 
device dependent command in the integrated security card 200, and a common command via 
a logical channel. A logical channel is created by an open channel command (Open_Channel) 
shown in drawing 10 , and a logical channel and application are matched. Corresponding to a 
logical channel number, it has an entry (351, 352, -). Each entry (351) stores information 
about a corresponding logical channel. CHCB (1, 0) expresses an application number while 
using the channel concerned. A pointer to a work for common commands assigned by a place 
(pointer to a code, the data S, and the data D) where application is stored during use, and its 
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application is stored. 

[0022] Drawing 9 is details of the table CCCB (340) which manages the common command 
processing program which manages a system command, and which table-SCCB(s) (360) and 
is registered. 

[0023]SCCB (360) stores the address of a system command manipulation routine. CCCB 
(340) stores the size of the register state of a common command, the pointer to common 
command code, and the work for common commands, etc. CCCB (340) is created by the 
loading command (Load_CCOM) of the common command shown in drawing 10 . 
[0024]The list of system commands is shown in drawing 10 . An Open_Channel command 
opens a logical channel, and matches the specified application, and returns the channel 
designator concerned. A Close_Channel command closes the specified channel. A 
Load_CCOM command carries out loading of the common command processing program. A 
Load_AP command carries out loading of the application unit. When choosing a system 
command, the channel designator 0 is used. 

[0025]The composition of the load unit 700 of the common command loaded by a Load_CCOM 
command and the composition of the load unit 710 of the application treated by a Load_AP 
command are shown in drawing 11 . 700 comprises the common command attribution 
information 701 , the common command instruction code 702, and the work 703 for common 
commands. 710 comprises the attribution information 711 of application, the application 
instruction code 712, the static data S (713), and the dynamic data D (714). 
[0026] Drawing 12 is details of the command information stored in the command-data field 300, 
and details of the response information stored in the response data area 310. The command 
data 300 comprise the channel designator 301, the command number 302, and the command 
parameter 303. In system command issue, a channel designator is 0. It is distinguished with 
the command number 302 any of a system command, a common command, and a user 
application device dependent command they are. The response data 310 comprises the return 
code 31 1 and the command return data 312. 

[0027] Drawing 13 shows the initialization processing 901 of the integrated security card 200. If 
the power supply of the integrated security card 200 is turned on, the initialization processing 
901 will operate. The work region 251 for system commands is initialized (Step 902), and it 
branches to the command reception 241 (Step 908). 

[0028]As for the command receiving process 241 and drawing 15 , the command starting 
processing 1100 and drawing 16 of drawing 14 are the invalid command processing 1200 and 
the command end processing 1300. In the command receiving process 241, it is confirmed 
whether supervised the host interface 210 and the command arrived (Step 1001). Command 
data are incorporated into the command data 300 when a command arrives (Step 1002). And it 
branches to the command starting processing 1100 (Step 1003). 
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[0029]ln the command starting processing 1100, the channel designator 301 is checked first 
(Step 1 101). the case where a channel designator is 0 - a system -- commun - it branches to 
the DODESU patch 2000 (Step 1108). 

[0030]When a channel designator is except zero, the number of the CHCB entry 
corresponding to a channel designator is set to current CHCB (320) (Step 1102). It controls 
about current CHCB henceforth. First, it is confirmed whether the channel concerned opens 
(Step 1 103). When opened by the channel, the application number channel in use is set as 
CHCB (1, 0). When not opened, it branches to the invalid command processing 1200 (Step 
1 120). When opened, it is confirmed whether the command number 302 is a common 
command (Step 1 104). Or it confirms whether be an application device dependent command 
(Step 1 106). In the case of a common command, CCCB (340) is checked. If CCCB (0) is in a 
state with registration, the start address of common command code will be acquired from 
CCCB (1). And it branches to the acquired address (Steps 1105, 1109, and 1130). Here, it 
branches at the head of [ 3000 ] the common command code of drawing 22 . 
[0031]On the other hand, in the case of an application device dependent command, CHCB (1, 
1) is checked. The start address of the application instruction code set as CHCB (1, 1) is 
acquired, and it branches to the acquired address (Steps 1107, 1110, and 1130). In this 
example, it branches at the head of [ 4000 ] the application codes of drawing 25 . When the 
address is not set as CHCB (1,1), it branches to the invalid command processing 1200 (Step 
1120). 

[0032]ln the invalid command processing 1200, an error code is set as the return code 31 1 
(Step 1201), and it branches to the command end processing 1300 (Step 1202). 
[0033]After the common command processing 3000 or the application device-dependent- 
command processing 4000 is completed, it branches to the end 1300 of a command. Here, the 
return code 31 1 and the command return data 312 which are set as the response data 310 are 
transmitted to the host equipment 100 (Step 1301). It returns to the command reception 241 
again here. 

f0034] drawing 17 - a system -- commun - the DODESU patch processing 2000 is shown. The 
command number 302 is first incorporated from the inside of the command data 300 (Step 
2001). SCCB (360) is searched, and the start address of the system command manipulation 
routine corresponding to the command number 302 is acquired, and it branches to the 
acquired address (Step 2002). In this example, it branches to Open_Channel, Close_Channel, 
etc. If each command processing is completed, it will branch to the end 1300 of a command 
(Step 2009). 

[0035] Drawing 18 is the Load_CCOM command processing 2300. A Load_CCOM command 
carries out loading of the load unit 700 of a common command. The load unit 700 of the 
common command is stored in the command parameter 303 in the command data 300. 
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[0036]CCCB (0) is made into a register state in CCCB of 340 (Step 2301). And the common 
command instruction code 702 is stored in the common command active region 263. (Step 
2302). Next, the size of the work 703 for common commands is acquired (Step 2303). And the 
CCCB data of 340 is set up. That is, the size of the work 703 for common commands is stored 
in the size of the common command instruction code 702, and CCCB (3), and the attribution 
information 701 of a common command is stored in CCCB (1) at CCCB (4) at the pointer to 
common command code, and CCCB (2) (Step 2304). Finally a normal return code is set as the 
return code 31 1, and processing is ended (Step 2305-2360). The work region for common 
commands is assigned when loading of the application is carried out later. 
[0037] Drawing 19 is the Load_AP command processing 2400. A Load_AP command carries 
out loading of the load unit 710 of application. The load unit 710 of application is stored in the 
command parameter 303 in the command data 300. 

[0038JA vacant entry is looked for in APCB of 330. If an empty APCB entry is found, APCB (1 , 
0) of the entry concerned will be made into busy status (Step 2401-2402). The application 
instruction code 712 and the application data S (713) are stored in the application operation 
field 510. When another application is already stored in the application operation field 510, it 
stores in the active region 520 which followed it (Step 2403). Next, the application data D (714) 
are stored in the work region 610 for applications. When another application is already stored 
in the work region 610 for applications, it stores in the active region 620 which followed it (Step 
2404). At this time, the work region for common commands (612, 622) is assigned following 
the application data D (61 1 , 621). The size of the work for common commands is obtained 
from CCCB (3) of 340. Naturally, when a common command is unregistered, assignment of 
the work region for common commands (612, 622) is skipped (Step 2405). And management 
data is set as the entry 331 of APCB. To APCB (1,1), the pointer value to an application 
instruction code (511, 521), To APCB (1, 2), the pointer value to the application data S (512, 
522), The pointer value to the work for common commands (612, 622) is set as APCB (1, 3) at 
the pointer value to the application data D (61 1 ,621), the size of the APCB (1 , 4) application 
data D (611, 621), and APCB (1, 7). And the application attribution information 711 is stored in 
APCB (1, 5) at an application name and APCB (1, 6). (Step 2406). Finally a normal return code 
is set as the return code 31 1, and processing is ended (Steps 2407 and 2460). With the APCB 
management data 339 in the head of APCB, the empty area of the application operation field 
262 and the empty area of the work region 252 for applications are managed. 
[0039] Drawing 20 is the Open_Channel command processing 2100. An Open_Channel 
command opens a logical channel, and matches the specified application, and returns the 
channel designator concerned. 

[0040]lt confirms whether already opened by the channel which the application specified first is 
using. Specifically, an application number is checked during channel use of CHCB (1, 0) in the 
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entry (351 ,352) of CHCB of 350. (Step 21 01). When already opened, the end of an error is 
carried out. When not opened, open shop operation is performed. It is confirmed whether 
check APCB of 330 and the specified application is registered. When not registered, the end of 
an error is carried out. (Step 2102). Next, it is vacant and a CHCB entry (351, 352) is looked 
for. If an empty CHCB entry is found, an application number is set as CHCB (1 , 0) of the entry 
concerned, and the entry concerned is occupied (Steps 2103 and 2104). And the management 
data of CHCB is set up. The pointer value to the application data D is set as the pointer value 
to the application data S, and CHCB (1 , 3), and the pointer value to the work for common 
commands is set as CHCB (1 , 1 ) at CHCB (1 , 4) at the pointer value to an application 
instruction code, and CHCB (1 , 2). The preset value to these CHCB(s) is acquired from the 
APCB entry (331, 332) which manages the application program concerned. (Step 2105). And 
the application data D concerned (61 1, 621) and the work for common commands (612, 622) 
are initialized (Steps 2106 and 2107). The channel number opened at the end is set as the 
command return data 312, return code normalcy is set as the return code 311, and processing 
is ended (Steps 2108, 2109, and 2160). 

[0041] Drawing 21 is the Close_Channel command processing 2200. A Close_Channel 
command closes a specified channel. 

[0042]First, a command parameter is taken out from the command parameter 303. CHCB (1 , 
0) in an entry (351 ,352) of CHCB corresponding to a channel specified with a parameter is 
checked (Step 2201). If CHCB is an open condition, CHCB (1, 0) is cleared, and occupancy of 
CHCB is canceled, namely, an applicable channel is closed (Step 2202). Finally return code 
normalcy is set as the return code 31 1 , and processing is ended (Steps 2203 and 2260). 
[0043]Common command processing is shown in drawing 22 and drawing 23 . a common 
command processing program is common to a head of a program - commun - it has the 
DODESU patch processing 3000. common -- commun -- it branches to each command 
processing program (3100, 3200) via DODESU patch processing. 

[0044]A CHCB entry (351) is chosen according to the value of current CHCB (320) which the 
command starting 1 100 set up (Step 3001). And the pointer to the work for common 
commands which the CHCB entry (351) concerned manages, and the pointer to the 
application data S are chosen (Step 3002). The common command processing program can 
access now after this the data S (512) which stores the information depending on the 
application of the publishing agency. The work (612) for common commands depending on the 
opened logical channel can be accessed now. 

[0045]Next, the command number 302 is taken out from the inside of the command data 300 
(Step 3003). And it branches to the common command processing program (3100-3200) 
corresponding to a common command number (Step 3004). If each command processing is 
completed, it will branch to the end 1300 of a command (Step 3010). 
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[0046] Drawing 23 is an example of a common command processing program. 
[0047]The pointer to the work for common commands which the CHCB entry (351) concerned 
manages at Step 3002, and the pointer to the application data S are chosen. Therefore, the 
share command processing program can access freely the data (512) in the application data 
S, and the data (612) in the work for share commands, and can perform data processing using 
the data. (Steps 3101, 3102, 3103, and 3104). And response data is set as the command 
return data 312 (Step 3105). Finally, a return code is set as the return code 311, and command 
processing is ended (Step 3106-3160). 

[0048] Drawing 24 is an example of composition of the application data S (512). The directory 
51 2d is arranged at the head of a data area. The pointer to each data is stored in the directory, 
and it is considered as the structure which can access each data easily. 
[0049]Application device-dependent-command processing is shown in drawing 25 and drawing 
26. an application device-dependent-command processing program - the head of a program -- 
only for application -- commun - it has the DODESU patch processing 4000. only for 
application - commun - it branches to each command processing program (4100, 4200) via 
DODESU patch processing. 

[0050]First, the command number 302 is taken out from the inside of the command data 300 
(Step 4001). And it branches to the common command processing program (4100-4200) 
corresponding to a common command number (Step 4002). If each command processing is 
completed, it will branch to the end 1300 of a command (Step 4010). 
[0051]lt is an example of the drawing 26 application device-dependent-command processing. 
The data address in the application data S (512) and the application data D (611) is acquired 
(Steps 4101 and 4102), and preservation of execution and the result of an operation is 
performed for an operation using those data (Step 4103). 

[0052]And response data is set as the command return data 312 (Step 4104). Finally, a return 
code is set as the return code 311, and command processing is ended (Step 4105-4160). 
[0053]According to the working example of this invention, with the secure card corresponding 
to multi-application, two or more active applications are opened and they can be performed 
simultaneously. Common command processing can be used among those applications. The 
registration deletion of the application share command can be carried out. The registration 
deletion also of the command processing program only for application can be carried out. 
[0054] 

[Effect of the lnvention]According to this invention, since two or more applications can be 
performed in parallel, the effect of improving a user's convenience is done so. 
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TECHNICAL FIELD 

[Field of the lnvention]This invention carries a security function and a memory storage function, 
and relates to the host equipment which can insert processing / [ in which processing and 
memory are possible ] storage (for example, security card), and its processing/storage (for 
example, security card) of data according to the command from host equipment. 
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PRIOR ART 

[Description of the Prior Art]An IC card embeds IC (integrated circuit) chip into a plastic card 
board, and has an external terminal of an IC chip in the surface. There are a power supply 
terminal, a clock terminal, a data input/output terminal, etc. in the external terminal of an IC 
chip. The IC chip operates, when a contact carries out direct supply of a power supply or the 
driving clock from an external terminal. By transmitting and receiving an electrical signal 
among contacts, such as a terminal, through an external terminal, an IC card exchanges 
information with a contact. As a result of information exchange, an IC card performs sending 
out of a calculation result or memory information, and change of memory information. The IC 
card can have the function to perform security processings, such as security data protection 
and personal authentication, based on such operation specifications. In the system for which 
the security of extra sensitive information, such as credit settlement and banking, is needed, 
the IC card is used as a user device for identification. 
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EFFECT OF THE INVENTION 

[Effect of the InventionJAccording to this invention, since two or more applications can be 
performed in parallel, the effect of improving a user's convenience is done so. 
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[Problem to be solved by the invention]An IC card stores security data in an inside, and all 
processings in connection with security data are performed inside an IC card. By doing so, it 
has prevented security data coming out of an IC card. Processing in connection with security 
data is constituted as a command processing program. From the exterior (host equipment) of 
an IC card, if a command is transmitted to an IC card, a command processing program 
corresponding to the command will be executed. And an executed result is replied to host 
equipment. A command (or command processing program) which does not restrict a command 
in one but is equipped two or more pieces in many cases has a close relation to mutual, an 
executed result of a front command is saved inside, and processing of a next command is 
performed using the data in many cases. According to a scenario of command issue for which 
it opts beforehand, a command is published by IC card from host equipment. Security system 
processing is carried out by repeating a series of command transmission / response reception. 
[0004]MULTOS etc. are known as an OS for IC cards corresponding to multi-application 
(operating system). A command processing program for applications and security data are 
managed as one, and can be registered and deleted at an IC card at application units.And a 
firewall is set up between applications and mutual interference is prevented. 
[0005] In the above-mentioned conventional technology, since a firewall was set up between 
applications, a common command used in common between applications was not able to be 
registered. Using data in application as a command parameter to a common command etc. 
was not completed. There was a problem that it was difficult only for one to be able to carry out 
open [ of the active application ], but to perform two or more applications simultaneously. 
[0006]The purpose of this invention is to provide a security card which improved a user's 
convenience by performing two or more applications in parallel. 
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MEANS 

[Means for solving problem]This invention is provided with an open channel-command and 
closing channel command, a loading command of a common command processing program, 
and a loading command of an application device-dependent-command processing program. 
[0008]A means to execute a system command, a common command, and an application 
device dependent command, a table and a logical channel unit which manage many logical 
channels ~ an application device-dependent-command processing program (an instruction 
code.) a static data, dynamic data, and share command processing program (an instruction 
code.) A means to compute and memorize a pointer to a common command instruction code, 
and size of a work area for common commands when carrying out loading of a means and a 
common command processing program which match and manage work data, A means to 
assign a work area for common commands to application units when carrying out loading of 
the application device-dependent-command processing program, A means to initialize dynamic 
data for application device dependent commands and work data for share commands 
corresponding to a case where a logical channel is opened, It has a means which makes 
command processing program selection and is performed with a logical channel number and a 
command number, a means which chooses and switches a work area for common commands 
by a logical channel number, and a means which chooses and switches static data for 
applications by a logical channel number. 
[0009] 

[Mode for carrying out the invention]An working example of this invention is described using 
Drawings. 

[0010]An entire configuration figure of one working example of this invention is shown in 
drawing 1 . The integrated security card 200 in connection with this invention is connected to 
the adapter 130 of host equipment via the host interface 210. The host equipment 100 
comprises the central processing unit (following CPU) 110, the memory apparatus 120, and 
the adapter 130 which perform control by the whole computer, and they are connected by the 
system bath 140. The application programs 121 and 122 and the command registration tool 
123 are stored in the memory apparatus 120. These programs access the integrated security 
card 200. A command published from the programs 121, 122, and 123 is transmitted to the 
integrated security card 200 via the adapter 130 and the interface bus 150. From the 
integrated security card 200, a response is replied to the host equipment 100 corresponding to 
a command. 

[0011] Drawing 2 is a system block figure of the integrated security card 200 in connection with 
this invention. 

[0012JCPU220 for the integrated security card 200 to perform data processing, Data (a 
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program.) containing - with ROM(Read Only Memory) 240 for memorizing, and RAM (Random 
Access Memory)250 and EEPROM (Electrically Erasable Programmable ROM)260. It has the 
host interface 210 for transmitting and receiving the code co-processor 270, and the exterior 
and data for performing processing carried out to a code/decoding in between, and they are 
connected by bus 230. It is possible to perform cipher processing with the code co-processor 
270 according to a command from the host equipment 100. According to a program (software), 
CPU220 may perform cipher processing instead of the code co-processor 270 (hardware). The 
integrated security card 200 communicates with the host equipment 100, and performs 
security processing and memory processing according to a command from the host equipment 
100. Communication between the integrated security card 200 and the host equipment 100 
may be a cable like the interface bus 150, and may be infrared rays and radio like an electric 
wave. Form of the integrated security card 200 is not limited in the shape of a card type. The 
integrated security card 200 is an IC card, for example. 

[0013]The type of a command published by the integrated security card 200 from the host 
equipment 100 is shown in drawing 3 . There are three types of commands, a system 
command, the common command which can be used in common between applications, and 
an application device dependent command. A common command and an application device- 
dependent-command processing program can be registered from the host equipment 100. 
[0014] Drawing 4 is a memory map of ROM240 in the integrated security card 200, and 
EEPROM260 and RAM250. The command reception program 241, the command epilogue 
program 242, system control, and the system command field 243 are assigned to ROM240. 
The system management data area 261, the application operation field 262, and the common 
command active region 263 are assigned to EEPROM260. The work region 251 for system 
commands and the work region 252 for applications are assigned to RAM250. The system 
management data area 261 and the work region 251 for system commands are used for the 
command reception program 241, the command epilogue program 242, and the system 
command processing program in the system command field 243. 
[0015] Drawing 5 is details of the work region 251 for system commands, and the system 
management data area 261. A command-data field which stores command information which 
received 300 from the host equipment 100, and 310 are response data areas which store 
response information conversely returned to host equipment. 320 is current CHCB which 
memorizes a logical channel number chosen now. 

[0016]Various system management tables are stored in the system management data area 
261. The table APCB where 330 manages an application device-dependent-command 
processing program registered (Application Control Block). The table CCCB where 340 
manages a common command processing program registered (Commoncommand control 
block). The table CHCB (Channel control block) where 350 manages a logical channel, and 
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360 are the tables SCCB (System command control block) which manage a system command. 

[001 7] Drawing 6 is details of the application operation field 262 and the work region 252 for 
applications. The application operation field 262 in EEPROM260 is divided into application 
units (510, 520), and a code (511, 521) and the data S (512, 522) of each application device- 
dependent-command processing program are stored in each field. The data S (512, 522) is 
static data of a constant etc. The work region 252 for applications in RAM250 is also divided 
into application units (610, 620), The data D (611, 621) and a work for common commands 
(612, 622) of each application device-dependent-command processing program are stored in 
each field. The data D (611, 621) is dynamic data used while application is active. A work for 
common commands (612, 622) is assigned for every application. 

[0018] Drawing 7 is details of the table APCB (330) which manages the application device- 
dependent-command processing program ******( e d). APCB (330) has an entry (331, 332, ..) 
corresponding to application. Each entry 331 stores the information about corresponding 
application. These information is created when application is registered. 
[0019]APCB (1, 0) is a switch showing whether application is registered or not. There are a 
pointer to the work for common commands assigned by the place (pointer to a code, the data 
S, and the data D) where corresponding application is stored, an application name, and its 
application, etc. APCB (330) is created by the loading command (Load_AP) of the application 
unit shown in drawing 10 . 

[0020] Drawing 8 is details of the table CHCB (350) which manages a logical channel. 
[0021]The program (121, 122, 123) in the host equipment 100 can access the application 
device dependent command in the integrated security card 200, and a common command via 
a logical channel. A logical channel is created by the open channel command (Open_Channel) 
shown in drawing 10 , and a logical channel and application are matched. Corresponding to a 
logical channel number, it has an entry (351, 352, -). Each entry (351) stores the information 
about a corresponding logical channel. CHCB (1, 0) expresses an application number while 
using the channel concerned. The pointer to the work for common commands assigned by the 
place (pointer to a code, the data S, and the data D) where application is stored during use, 
and its application is stored. 

[00221 Drawing 9 is details of the table CCCB (340) which manages the common command 
processing program which manages a system command, and which table-SCCB(s) (360) and 
is registered. 

[0023]SCCB (360) stores the address of a system command manipulation routine. CCCB 
(340) stores the size of the register state of a common command, the pointer to common 
command code, and the work for common commands, etc. CCCB (340) is created by the 
loading command (Load_CCOM) of the common command shown in drawing 10 . 
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[0024]The list of system commands is shown in drawing 10 . An Open_Channel command 
opens a logical channel, and matches the specified application, and returns the channel 
designator concerned. A Close_Channel command closes the specified channel. A 
Load_CCOM command carries out loading of the common command processing program. A 
Load_AP command carries out loading of the application unit. When choosing a system 
command, the channel designator 0 is used. 

[0025]Composition of the load unit 700 of a common command loaded by a Load_CCOM 
command and composition of the load unit 710 of application treated by a Load_AP command 
are shown in drawing 1 1 . 700 comprises the common command attribution information 701, 
the common command instruction code 702, and the work 703 for common commands. 710 
comprises the attribution information 711 of application, the application instruction code 712, 
the static data S (713), and the dynamic data D (714). 

f0026] Drawing 12 is details of command information stored in the command-data field 300, 
and details of response information stored in the response data area 310. The command data 
300 comprise the channel designator 301, the command number 302, and the command 
parameter 303. In system command issue, a channel designator is 0. It is distinguished with 
the command number 302 any of a system command, a common command, and a user 
application device dependent command they are. The response data 310 comprises the return 
code 31 1 and the command return data 312. 

[00271 Drawing 13 shows the initialization processing 901 of the integrated security card 200. If 
the power supply of the integrated security card 200 is turned on, the initialization processing 
901 will operate. The work region 251 for system commands is initialized (Step 902), and it 
branches to the command reception 241 (Step 908). 

[0028]As for the command receiving process 241 and drawing 15 , the command starting 
processing 1 100 and drawing 16 of drawing 14 are the invalid command processing 1200 and 
the command end processing 1300. In the command receiving process 241, it is confirmed 
whether supervised the host interface 210 and the command arrived (Step 1001). Command 
data are incorporated into the command data 300 when a command arrives (Step 1002). And it 
branches to the command starting processing 1100 (Step 1003). 

[0029]ln the command starting processing 1100, the channel designator 301 is checked first 
(Step 1 101). a case where a channel designator is 0 - a system - commun -- it branches to 
the DODESU patch 2000 (Step 1108). 

[0030]When a channel designator is except zero, a number of a CHCB entry corresponding to 
a channel designator is set to current CHCB (320) (Step 1 102). It controls about current CHCB 
henceforth. First, it is confirmed whether the channel concerned opens (Step 1 103). When 
opened by channel, an application number channel in use is set as CHCB (1, 0). When not 
opened, it branches to the invalid command processing 1200 (Step 1 120). When opened, it is 
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confirmed whether the command number 302 is a common command (Step 1 104). Or it 
confirms whether be an application device dependent command (Step 1 106). In the case of a 
common command, CCCB (340) is checked. If CCCB (0) is in a state with registration, a start 
address of common command code will be acquired from CCCB (1). And it branches to an 
acquired address (Steps 1 105, 1 109, and 1130). Here, it branches at the head of [ 3000 ] 
common command code of drawing 22 . 

[0031]On the other hand, in the case of an application device dependent command, CHCB (1, 
1) is checked. The start address of the application instruction code set as CHCB (1, 1) is 
acquired, and it branches to the acquired address (Steps 1107, 1110, and 1130). In this 
example, it branches at the head of [ 4000 ] the application codes of drawing 25 . When the 
address is not set as CHCB (1, 1), it branches to the invalid command processing 1200 (Step 
1120). 

[0032]ln the invalid command processing 1200, an error code is set as the return code 31 1 
(Step 1201), and it branches to the command end processing 1300 (Step 1202). 
[0033]After the common command processing 3000 or the application device-dependent- 
command processing 4000 is completed, it branches to the end 1300 of a command. Here, the 
return code 31 1 and the command return data 312 which are set as the response data 310 are 
transmitted to the host equipment 100 (Step 1301). It returns to the command reception 241 
again here. 

[0034] drawing 17 -- a system -- commun - the DODESU patch processing 2000 is shown. The 
command number 302 is first incorporated from the inside of the command data 300 (Step 
2001). SCCB (360) is searched, and a start address of a system command manipulation 
routine corresponding to the command number 302 is acquired, and it branches to an acquired 
address (Step 2002). In this example, it branches to Open_Channel, Close_Channel, etc. If 
each command processing is completed, it will branch to the end 1300 of a command (Step 
2009). 

r00351 Drawing 18 is the Load_CCOM command processing 2300. A Load_CCOM command 
carries out loading of the load unit 700 of a common command. The load unit 700 of a 
common command is stored in the command parameter 303 in the command data 300. 
[0036]CCCB (0) is made into a register state in CCCB of 340 (Step 2301). And the common 
command instruction code 702 is stored in the common command active region 263. (Step 
2302). Next, size of the work 703 for common commands is acquired (Step 2303). And CCCB 
data of 340 is set up. That is, size of the work 703 for common commands is stored in size of 
the common command instruction code 702, and CCCB (3), and the attribution information 701 
of a common command is stored in CCCB (1) at CCCB (4) at a pointer to common command 
code, and CCCB (2) (Step 2304). Finally a normal return code is set as the return code 311, 
and processing is ended (Step 2305-2360). A work region for common commands is assigned 
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when loading of the application is carried out later. 

[0037] Drawing 19 is the Load_AP command processing 2400. A Load_AP command carries 
out loading of the load unit 710 of application. The load unit 710 of application is stored in the 
command parameter 303 in the command data 300. 

[0038]A vacant entry is looked for in APCB of 330. If an empty APCB entry is found, APCB (1 , 
0) of the entry concerned will be made into busy status (Step 2401-2402). The application 
instruction code 712 and the application data S (713) are stored in the application operation 
field 510. When another application is already stored in the application operation field 510, it 
stores in the active region 520 which followed it (Step 2403). Next, the application data D (714) 
are stored in the work region 610 for applications. When another application is already stored 
in the work region 610 for applications, it stores in the active region 620 which followed it (Step 
2404). At this time, the work region for common commands (612, 622) is assigned following 
the application data D (611, 621). The size of the work for common commands is obtained 
from CCCB (3) of 340. Naturally, when a common command is unregistered, assignment of 
the work region for common commands (612, 622) is skipped (Step 2405). And management 
data is set as the entry 331 of APCB. To APCB (1,1), the pointer value to an application 
instruction code (511, 521), To APCB (1, 2), the pointer value to the application data S (512, 
522), The pointer value to the work for common commands (612, 622) is set as APCB (1, 3) at 
the pointer value to the application data D (61 1 ,621), the size of the APCB (1 , 4) application 
data D (61 1 , 621), and APCB (1 , 7). And the application attribution information 71 1 is stored in 
APCB (1, 5) at an application name and APCB (1, 6). (Step 2406). Finally a normal return code 
is set as the return code 31 1, and processing is ended (Steps 2407 and 2460). With the APCB 
management data 339 in the head of APCB, the empty area of the application operation field 
262 and the empty area of the work region 252 for applications are managed. 
r0039] Drawing 20 is the Open_Channel command processing 2100. An Open_Channel 
command opens a logical channel, and matches specified application, and returns the channel 
designator concerned. 

[0040]lt confirms whether already opened by channel which application specified first is using. 
Specifically, an application number is checked during channel use of CHCB (1, 0) in an entry 
(351 ,352) of CHCB of 350. (Step 21 01). When already opened, the end of an error is carried 
out. When not opened, open shop operation is performed. It is confirmed whether check APCB 
of 330 and specified application is registered. When not registered, the end of an error is 
carried out. (Step 2102). Next, it is vacant and a CHCB entry (351 , 352) is looked for. If an 
empty CHCB entry is found, an application number is set as CHCB (1, 0) of the entry 
concerned, and the entry concerned is occupied (Steps 2103 and 2104). And management 
data of CHCB is set up. A pointer value to the application data D is set as a pointer value to 
the application data S, and CHCB (1, 3), and a pointer value to a work for common commands 
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is set as CHCB (1, 1) at CHCB (1, 4) at a pointer value to an application instruction code, and 
CHCB (1 , 2). A preset value to these CHCB(s) is acquired from an APCB entry (331 , 332) 
which manages the application program concerned. (Step 2105). And the application data D 
concerned (61 1 , 621) and a work for common commands (612, 622) are initialized (Steps 
2106 and 2107). A channel number opened at the end is set as the command return data 312, 
return code normalcy is set as the return code 311, and processing is ended (Steps 2108, 
2109, and 2160). 

[0041]Draw]ng_21_is the Close_Channel command processing 2200. A Close_Channel 
command closes the specified channel. 

[0042]First, a command parameter is taken out from the command parameter 303. CHCB (1, 
0) in the entry (351 ,352) of CHCB corresponding to the channel specified with the parameter is 
checked (Step 2201). If CHCB is an open condition, CHCB (1, 0) is cleared, and occupancy of 
CHCB is canceled, namely, an applicable channel is closed (Step 2202). Finally return code 
normalcy is set as the return code 31 1 , and processing is ended (Steps 2203 and 2260). 
[0043]Common command processing is shown in drawing 22 and drawing 23 . a common 
command processing program is common to the head of a program - commun - it has the 
DODESU patch processing 3000. common - commun -- it branches to each command 
processing program (3100, 3200) via DODESU patch processing. 
[0044]A CHCB entry (351) is chosen according to a value of current CHCB (320) which the 
command starting 1 100 set up (Step 3001). And a pointer to a work for common commands 
which the CHCB entry (351) concerned manages, and a pointer to the application data S are 
chosen (Step 3002). The common command processing program can access now after this 
the data S (512) which stores information depending on application of a publishing agency. A 
work (612) for common commands depending on an opened logical channel can be accessed 
now. 

[0045]Next, the command number 302 is taken out from the inside of the command data 300 
(Step 3003). And it branches to a common command processing program (3100-3200) 
corresponding to a common command number (Step 3004). If each command processing is 
completed, it will branch to the end 1300 of a command (Step 3010). 
[00461 Drawing 23 is an example of a common command processing program. 
[0047]A pointer to a work for common commands which the CHCB entry (351) concerned 
manages at Step 3002, and a pointer to the application data S are chosen. Therefore, the 
share command processing program can access freely data (512) in the application data S, 
and data (612) in a work for share commands, and can perform data processing using the 
data. (Steps 3101, 3102, 3103, and 3104). And response data is set as the command return 
data 312 (Step 3105). Finally, a return code is set as the return code 31 1, and command 
processing is ended (Step 3106-3160). 
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[0048] Drawing 24 is an example of composition of the application data S (512). The directory 
51 2d is arranged at the head of a data area. A pointer to each data is stored in a directory, and 
it is considered as structure which can access each data easily. 

[0049]Application device-dependent-command processing is shown in drawing 25 and drawing 
26 . an application device-dependent-command processing program - the head of a program - 
only for application - commun -- it has the DODESU patch processing 4000. only for 
application - commun -- it branches to each command processing program (4100, 4200) via 
DODESU patch processing. 

[0050]First, the command number 302 is taken out from the inside of the command data 300 
(Step 4001). And it branches to the common command processing program (4100-4200) 
corresponding to a common command number (Step 4002). If each command processing is 
completed, it will branch to the end 1300 of a command (Step 4010). 
[0051]lt is an example of the drawing 26 application device-dependent-command processing. 
The data address in the application data S (512) and the application data D (611) is acquired 
(Steps 4101 and 4102), and preservation of execution and the result of an operation is 
performed for an operation using those data (Step 4103). 

[0052]And response data is set as the command return data 312 (Step 4104). Finally, a return 
code is set as the return code 31 1 , and command processing is ended (Step 4105-4160). 
[0053]According to the working example of this invention, with a secure card corresponding to 
multi-application, two or more active applications are opened and they can be performed 
simultaneously. Common command processing can be used among those applications. The 
registration deletion of the application share command can be carried out. The registration 
deletion also of the command processing program only for application can be carried out. 
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[Brief Description of the Drawings] 

[Drawing 1] The entire configuration figure of one working example of this invention 
[Drawing 2] The system block figure of the integrated security card in connection with this 
invention 

[Drawing 3] The explanatory view of the command type published by the integrated security 
card 

[Drawing 4] The memory map figure of an integrated security card 

[Drawing 5] The detail view of the work region for system commands, and a system 

management data area 

[Drawing 6] The detail view of an application operation field and the work region for applications 

[Drawing 7] The management table figure of an application process program 
[Drawing 8] The management table figure of a logical channel 
[Drawing 9] The management table figure of a system command 
[Drawing 1Q] The explanatory view of a system command 

[Drawing 11] The explanatory view of the load unit of a common command and application 

[Drawing 12] The explanatory view of command data and response data 

[Drawing 13] The flow chart of the initialization processing of an integrated security card 

[Drawing 14] The flow chart of a command receiving process 

[Drawing 15] The flow chart of command starting processing 

[Drawing 16] The flow chart of invalid command processing and command end processing 

[Drawing 17] a system commun - the flow chart of DODESU patch processing 

[Drawing 18] The flow chart of Load_CCOM command processing 

[Drawing 19] The flow chart of Load_AP command processing 

[Drawing 20] The flow chart of Open_Channel command processing 

[Drawing 21] The flow chart of Close_Channel command processing 

[Drawing 22] common - commun - the flow chart of DODESU patch processing 

[Drawing 23] The flow chart of common command processing 

[Drawing 24] The block diagram of the application data S 

[Drawing 25] only for application - commun - the flow chart of DODESU patch processing 
[Drawing 26] The flow chart of application device-dependent-command processing 
[Explanations of letters or numerals] 

100 - Host equipment, 110,220 -- A central processing unit, 120 -- Memory apparatus, 
121,122 - An application program, 123 - Command registration tool, 130 [ - A 
comprehensive security card 210 / -- A host interface, 230 / - A bus, 240 / - ROM, 250 / - 
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RAM, 260 / -- EEPROM, 270 / - Code co-processor ] - An adapter, 140 -- A system bath, 150 
-- An interface bus, 200 
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